U.S. Pat. App. No.: 09/782,593 
Atty. Docket No.: 005313.00001 

This listing of claims will replace all prior versions, and listings, of claims in the application: 

IN THE CLAIMS: 

1. (Amended) A method of transmitting data securely over a computer network, 
comprising the steps of: 

(1) establishing a communication path between a first computer and a second computer; 

(2) encrypting and transmitting data records between the first computer and the second 
computer using an unreliable communication protocol, wherein each data record is encrypted by 
incorporating a nonce and without reference to a previously transmitted data record ; and 

(3) in the second computer, receiving and decrypting the data records transmitted in step 
(2) by using the nonce in combination with a previously shared encryption key to decrypt each of 
the data records without reference to a previously received data record. 

2. (Original) The method of claim 1, further comprising the step of, prior to step (1), 
establishing a reliable communication path between the first computer and the second computer 
and exchanging security credentials over the reliable communication path. 

3. (Original) The method of claim 2, wherein the step of exchanging security credentials 
comprises the step of exchanging an encryption key that is used to encrypt the data records in 
step (2). 

4. (Canceled) The method of claim 1, wherein step (2) comprises the step of 
incorporating a nonce in each data record that is used by the second computer in combination 
with a previously shared encryption key to decrypt each of the data records in step (3). 
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5. (Amended) The method of claim I [4], wherein the nonce comprises a random number. 

6. (Amended) The method of claim 1 [4], further comprising the step of, in the second 
computer, verifying that the nonce has not previously been received in a previously transmitted 
data record. 

7. (Amended) The method of claim 1, 

wherein step (2) comprises the step of embedding an indicator in each of the encrypted 
data records indicating that the encrypted data records are encrypted according to an encryption 
scheme that encrypts records without regard to any previously transmitted data records, and 

wherein step (3) comprises the step of determining whether the indicator is present in 
each received r ecord and, in response to determining that the indicator is not present, processing 
each such record differently than if the indicator is set. 

8. (Original) The method of claim 1, wherein step (1) is performed using the 
Transmission Control Protocol, and wherein step (2) is performed using the User Datagram 
Protocol. 

9. (Original) The method of claim 1, wherein step (2) is performed by a proxy server that 
encrypts data records received from another server. 

10. (Original) A method of securely transmitting a plurality of data records between a 
client computer and a proxy server using an unreliable communication protocol, comprising the 
steps of: 

(1) establishing a reliable connection between the client computer and the proxy server; 

(2) exchanging encryption credentials between the client computer and the proxy server 

3 



Copied from 09782595 on 04/04/2005 



U.S. Pat. App. No.: 09/782,593 
Atty. Docket No.: 005313.00001 

over the reliable connection; 

(3) generating a nonce for each of a plurality of data records, wherein each nonce 
comprises an initialization vector necessary to decrypt a corresponding one of the plurality of 
data records; 

(4) using the nonce to encrypt each of the plurality of data records and appending the 
nonce to each of the plurality of data records; 

(5) transmitting the plurality of data records encrypted in step (4) from the client 
computer to the proxy server using an unreliable communication protocol; and 

(6) in the proxy server, decrypting each of the plurality of encrypted data records using a 
corresponding nonce extracted from each data record and a previously shared encryption key. 

1 1 . (Original) The method of claim 10, wherein step (6) comprises the step of checking to 
determine whether each data record received from the client computer is formatted according to a 
secure unreliable transmission format and, if a particular record is not formatted according to a 
secure unreliable transmission format, bypassing the decryption using the corresponding nonce. 

12. (Original) The method of claim 10, wherein step (3) comprises the step of generating 
a random number as each nonce. 

13. (Original) The method of claim 10, wherein step (1) is performed using Transmission 
Control Protocol, and wherein step (5) is performed using User Datagram Protocol. 

14. (Original) The method of claim 10, wherein step (6) is performed using an encryption 
key previously shared using a reliable communication protocol. 

15. (Original) The method of claim 14, wherein the reliable communication protocol is 
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Transmission Control Protocol. 

16. (Original) A system for securely transmitting data using an unreliable protocol, 
comprising: 

a first computer comprising a communication protocol client function operable in 
conjunction with an application program to transmit data records securely using an unreliable 
protocol; and 

a second computer coupled to the first computer and comprising a communication 
protocol server function operable in conjunction with the communication protocol client function 
to receive data records securely using the unreliable communication protocol, 

wherein the communication protocol client function encrypts each data record using a 
nonce and an encryption key and appends the respective nonce to each of the encrypted data 
records; and 

wherein the communication protocol server function decrypts each of the data records 
using the respectively appended nonce and the encryption key. 

17. (Original) The system of claim 16, wherein the communication protocol client 
function exchanges encryption credentials with the communication protocol server function 
using a reliable communication protocol. 

18. (Original) The system of claim 17, wherein the unreliable communication protocol 
comprises the User Datagram Protocol, and wherein the reliable communication protocol 
comprises the Transmission Control Protocol. 

19. (Original) The system of claim 16, wherein the communication protocol client 
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function and the communication protocol server function are compatible with the SOCKS 

communication protocol. 

20. (Original) The system of claim 16, wherein the communication protocol client 
function and the communication protocol server function are compatible with the SSL/TLS 
communication protocol. 

21. (Original) The system of claim 16, wherein the second computer comprises a proxy 
server that forwards decrypted records received from the first computer to a server computer. 

22. (Original) The system of claim 16, wherein the second computer comprises a record 
detector that determines whether an indicator has been set in each data record received from the 
first computer and, if the indicator has not been set, bypassing decryption in the server computer. 

23. (New) A method of transmitting data securely over a computer network, comprising: 
establishing a communication path with a remote computer; 

encrypting data records such that each data record is encrypted by incorporating a nonce 
encrypted such that the remote computer can decrypt each of the data records by using the nonce 
in combination with a previously shared encryption key and without reference to a previously 
received data record; and 

transmitting the encrypted data records to the remote computer using an unreliable 
communication protocol. 

24. (New) The method of claim 23, further comprising establishing a reliable 
communication path to the remote computer and exchanging security credentials with the remote 
computer over the reliable communication path. 
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25. (New) The method of claim 24, wherein the step of exchanging security credentials 
includes exchanging an encryption key that is used to encrypt the data records. 

26. (New) The method of claim 23, wherein the nonce includes a random number. 

27. (New) The method of claim 23, wherein encrypting the data records includes 
embedding an indicator in each of the data records indicating that the data records are encrypted 
according to an encryption scheme that encrypts records without regard to any previously 
transmitted data records, such that the remote computer can determine whether the indicator is 
present in each received data record and, in response to determining that the indicator is not 
present, process each such received data record differently than if the indicator is set. 

28. (New) The method of claim 23, wherein 

establishing the communication path with the remote computer is performed using the 
Transmission Control Protocol, and 

encrypting the data records is performed using the User Datagram Protocol. 

29. (New) The method of claim 23, wherein encrypting the data records is performed by a 
proxy server that encrypts data records received from another server. 

30. (New) A method of transmitting data securely over a computer network, comprising: 
establishing a communication path with a remote computer; 

receiving data records 

transmitted from the remote computer using an unreliable communication 
protocol, and 

encrypted such that each data record is encrypted by incorporating a nonce 
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without reference to a previously encrypted data record ; and 

decrypting the received data records by using the nonce in combination with a previously 
shared encryption key to decrypt each received data record without reference to a previously 
received data record. 

3 1 . (New) The method of claim 30, further comprising establishing a reliable 
communication path with the remote computer and exchanging security credentials with the 
remote computer over the reliable communication path. 

32. (New) The method of claim 31, wherein exchanging security credentials includes 
exchanging an encryption key that is used to encrypt the received data records. 

33. (New) The method of claim 30, wherein the nonce includes a random number. 

34. (New) The method of claim 30 further comprising verifying that the nonce has not 
previously been received in a previously received data record. 

35. (New) The method of claim 30, 

wherein the received encrypted data records are encrypted by embedding an indicator in 
each of the data records indicating that the data records are encrypted according to an encryption 
scheme that encrypts records without regard to any previously transmitted data records, and 

further comprising determining whether the indicator is present in each received data 
record and, in response to determining that the indicator is not present in a received data record, 
processing such received data record differently than if the indicator is set. 

36. (New) The method of claim 30, wherein 

establishing a communication path with a remote computer is performed using the 
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Transmission Control Protocol, and 

received the encrypted data records is performed using the User Datagram Protocol. 

37. (New) The method of claim 30, wherein the received data records are received from a 
proxy server that encrypts data records the proxy server received from another server. 

38. (New) A method of securely transmitting a plurality of data records to a remote 
computer using an unreliable communication protocol, comprising: 

(1) establishing a reliable connection with the remote computer; 

(2) exchanging encryption credentials with the remote computer over the reliable 
connection; 

(3) generating a nonce for each of a plurality of data records, wherein each nonce 
comprises an initialization vector; 

(4) using the nonce to encrypt each of the plurality of data records and appending the 
nonce to each of the plurality of data records; 

(5) transmitting the plurality of data records encrypted in step (4) to the remote computer 
using an unreliable communication protocol, such that the remote computer can decrypt each of 
the plurality of encrypted data records using a corresponding nonce extracted from each 
encrypted data record and a previously shared encryption key. 

39. (New) The method of claim 38, wherein step (3) comprises generating a random 
number as each nonce. 

40. (New) The method of claim 38, wherein step (1) is performed using the Transmission 
Control Protocol, and wherein step (5) is performed using the User Datagram Protocol. 
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41. (New) The method of claim 38, wherein step (6) is performed using an encryption key 
previously shared using a reliable communication protocol. 

42. (New) The method of claim 41, wherein the reliable communication protocol is the 
Transmission Control Protocol. 

43. (New) A method of securely transmitting a plurality of data records to a remote 
computer using an unreliable communication protocol, comprising: 

(1) establishing a reliable connection with the remote computer; 

(2) exchanging encryption credentials with the remote computer over the reliable 
connection; 

(3) receiving a plurality of data records from the computer using an unreliable 
communication protocol such that each data record is encrypted by 

generating a nonce for each of the plurality of data records, wherein each nonce 
comprises an initialization vector, 

using the nonce to encrypt each of the plurality of data records, and 
appending the nonce to each of the plurality of encrypted data records; and 

(4) decrypting each of the plurality of encrypted data records using a corresponding nonce 
extracted from each data record and a previously shared encryption key. 

44. (New) The method of claim 43, further comprising checking to determine whether 
each data record received from the client computer is formatted according to a secure unreliable 
transmission format and, if a particular record is not formatted according to a secure unreliable 
transmission format, bypassing the decryption using the corresponding nonce. 
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45. (New) The method of claim 43, wherein each nonce includes a randomly generated 
number. 

46. (New) The method of claim 43, wherein step (1) is performed using Transmission 
Control Protocol, and wherein step (4) is performed using User Datagram Protocol. 

47. (New) The method of claim 43, wherein the previously shared encryption key 
previously was shared using a reliable communication protocol. 

48. (New) The method of claim 47, wherein the reliable communication protocol is 
Transmission Control Protocol. 
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